Getting the threat of breach entirely to zero is effectively impossible, even in relatively small enterprises. And the closer we aim toward zero, the more expensive and time-consuming it becomes.
This helps to explain why trying to prevent the possibility of security breaches entirely is a losing battle.